Senior Splunk Engineer

About The Position

Requirements

• Must possess an active TS/SCI w/ a CI polygraph
• 5+ years of experience in an enterprise and/or cybersecurity-focused environment
• Bachelor’s degree, or 4+ additional years of cybersecurity experience in lieu of a degree.
• DoD 8570 IAT Level II certification
• Experience with Splunk administration and engineering
• Experience with Splunk Enterprise Security (ES) operations and configurations
• Proficiency with Unix and Windows environments

Nice To Haves

• Splunk certifications such as Architect, Consultant I/II, Admin, or Power User
• Experience with scripting or programming languages (e.g., Bash, Python, Java, Perl, .NET)
• Familiarity with developing and deploying operational and security use cases within Splunk

Responsibilities

• Manages the day-to-day operation of large enterprise Splunk deployments.
• Troubleshoots data collection issues and resolving system conditions affectingstability or integrity.
• Deploys and maintains both supported and unsupported Splunk add-ons.
• Executes Splunk Enterprise upgrades and patches.
• Configures and deploys Splunk forwarders using centralized management tools.
• Maintains and tunes Splunk Enterprise Security (ES) content and performance.
• Manages knowledge objects, data models, dashboards, alerts, and operationalcontent.
• Supports API integrations and external system connectivity.
• Develops and maintains detailed engineering and compliance documentation.
• Contributes to Splunk deployment and architecture diagrams and systemdocumentation.
• Enforces role-based access controls and operational security policies.
• Collaborates with cyber analysts and engineering teams to improve detection andresponse capabilities.
• Applies relevant security policies, standards, and technical guidelines to ensurecompliance.